VDB
WID-SEC-W-2026-0422
WID-SEC-W-2026-0422
PUBLISHED
CVSS 8.699999809265137 HIGH
Mattermost ist ein webbasierter Instant-Messaging-Dienst.
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mattermost Mattermost Server <10.11.11 | ||
| Mattermost Mattermost Server 10.11.11 | ||
| Mattermost Mattermost Desktop 5.13.4.0 | ||
| Mattermost Mattermost Plugins 2.3.1.0 | ||
| Mattermost Mattermost Plugins 10.11.11 | ||
| Mattermost Mattermost Server <11.2.3 | ||
| Mattermost Mattermost Desktop <5.13.3.0 | ||
| Mattermost Mattermost Plugins <2.3.1.0 | ||
| Mattermost Mattermost Server 11.2.3 | ||
| Mattermost Mattermost Server <11.3.1 | ||
| Mattermost Mattermost Server 11.3.1 | ||
| Mattermost Mattermost Desktop 5.13.3.0 | ||
| Mattermost Mattermost Desktop <5.13.4.0 | ||
| Mattermost Mattermost Plugins <10.11.11 | ||
| Mattermost Mattermost Server <11.4.0 | ||
| Mattermost Mattermost Server 11.4.0 |
Exploit Intelligence
- https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0422.json (circl)
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0422 (circl)
- https://mattermost.com/security-updates/#desktop (circl)
- https://mattermost.com/security-updates/#plugins (circl)
- https://mattermost.com/security-updates/#server (circl)
Timeline
- Feb 15, 2026 CVE Published
- Mar 19, 2026 CVE Updated
References
- https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0422.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0422 advisory
- https://mattermost.com/security-updates/#desktop url
- https://mattermost.com/security-updates/#plugins url
- https://mattermost.com/security-updates/#server url